Open iprokhorov opened 7 months ago
Hi here is log. i getting "too many redirects" after user login
openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/redirect_uri?state=OGyUnTOezZqDzUaqKUeoZySoluk&session_state=dbe5e137-2a28-4967-a65b-dadf75b962ad&code=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..i8k8k2aP6nrKC24IukGSNQ.tB2WsCwNbxD8S27hxhQbDiBCjaObjEEEQuCKXaUQ-Z_ea8ZxNfoQvW9DjNbGB9-K3jBc43pn3YL4ogYZYRcBd5avLm8I_MT5nxtPG_H1-YLSp9clZTqprAd2-vIttEuHXf-64SrJqX3GXdzJZvx0JoSjo5JUy5CmkPbphVqWYgjvzbv8zM-aAnZiedKVOiwhkTpCadLer94UssV96on9woiJxRVGGWlwBFDpjOn85QFHwaELTzKd7bYOZSFtfEPr.LgelRP3OPQ2xLPRlzExSfA HTTP/1.1" 302 209 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/ HTTP/1.1" 302 467 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /auth/realms/Testrealm/protocol/openid-connect/auth?response_type=code&scope=openid&client_id=testclient&state=R4eTEuD9KmDts12jodhM8EFl-q4&redirect_uri=http%3A%2F%2Fopenidc%2Fprotected%2Fredirect_uri&nonce=e_-XuNDJWG2zVzVwtbpgLFxD9yNANI-NZK27Okpm7fM HTTP/1.1" 302 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | [Wed Feb 07 06:16:59.691624 2024] [auth_openidc:error] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_restore_proto_state: no "mod_auth_openidc_state_R4eTEuD9KmDts12jodhM8EFl-q4" state cookie found openidc-1 | [Wed Feb 07 06:16:59.691702 2024] [auth_openidc:error] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_unsolicited_proto_state: could not parse JWT from state: invalid unsolicited response: [src/jose.c:809: oidc_jwt_parse]: cjose_jws_import failed: invalid argument [file: jws.c, function: cjose_jws_import, line: 787] openidc-1 | [Wed Feb 07 06:16:59.691708 2024] [auth_openidc:error] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_authorization_response_match_state: unable to restore state openidc-1 | [Wed Feb 07 06:16:59.691713 2024] [auth_openidc:warn] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_handle_authorization_response: invalid authorization response state; a default SSO URL is set, sending the user there: http://openidc/protected/ openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/redirect_uri?state=R4eTEuD9KmDts12jodhM8EFl-q4&session_state=dbe5e137-2a28-4967-a65b-dadf75b962ad&code=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..q7urKj2-HnNPYO9Z68XTwA.rRKdELKBR4cknQKijw4m8kdJdVuwUl4OorvaLD5anTesKZoC79Az_5_XoUJGCZ2lp4hyTEcj7Zcr2J_pvaxcxty-vTO6a1NNXAn3_b2EtbnzqUH0E_pVMRafwp6tMiNg__PrmyJaZmVWVc4dFGnkVX-my78p5CxYpRWYYsjV-1NiiX-mhDBOVI0pmJKJq6gUMgxV_5UzUPF_rWcLm7i_F3oPwXG5K6oYvEYDrHA6oXhQp0FqoGnR4dXCA5OjEQTz.a2J88MadiR6aY_tCu2ehkw HTTP/1.1" 302 209 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/ HTTP/1.1" 302 467 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /auth/realms/Testrealm/protocol/openid-connect/auth?response_type=code&scope=openid&client_id=testclient&state=qEtgOQYDqrzKcpNJ18QYh3Bilag&redirect_uri=http%3A%2F%2Fopenidc%2Fprotected%2Fredirect_uri&nonce=B998lw5E3zFPHFtjebyF6JbmH0kKhgSUA7sc-kQY0bU HTTP/1.1" 302 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/redirect_uri?state=qEtgOQYDqrzKcpNJ18QYh3Bilag&session_state=dbe5e137-2a28-4967-a65b-dadf75b962ad&code=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..2LT010-nEOThEDi04aHqJg.NXZ6JEejx6l1zy9G1UYUZOzMpdFSCS72fBUAQ4HhtF0TeNVIG4rNvNt8O4rGTKpK0ZLpdXzIHH7n1krKxqcxX2TaX2m_SmrdzjK4AaySANNsdCvGAj5Y4lPNn_USwGFE3T4prJkTr-IbU_K07jgoSHdypvRaAUNnePbwfh_DAi_dQwX7mtkH8xwPqUHaqIMtU39iGslANwSbbYUObsOf0NAZhXYGEOMgEuqYHFDolIz-FmDUcXUk9b6gRyB9wYnV.Tvro1hakZ1rwTJ2__hhi8g HTTP/1.1" 302 209 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | [Wed Feb 07 06:16:59.781493 2024] [auth_openidc:error] [pid 38:tid 140251511105280] [client 192.168.65.1:42785] oidc_restore_proto_state: no "mod_auth_openidc_state_qEtgOQYDqrzKcpNJ18QYh3Bilag" state
Hi here is log. i getting "too many redirects" after user login
openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/redirect_uri?state=OGyUnTOezZqDzUaqKUeoZySoluk&session_state=dbe5e137-2a28-4967-a65b-dadf75b962ad&code=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..i8k8k2aP6nrKC24IukGSNQ.tB2WsCwNbxD8S27hxhQbDiBCjaObjEEEQuCKXaUQ-Z_ea8ZxNfoQvW9DjNbGB9-K3jBc43pn3YL4ogYZYRcBd5avLm8I_MT5nxtPG_H1-YLSp9clZTqprAd2-vIttEuHXf-64SrJqX3GXdzJZvx0JoSjo5JUy5CmkPbphVqWYgjvzbv8zM-aAnZiedKVOiwhkTpCadLer94UssV96on9woiJxRVGGWlwBFDpjOn85QFHwaELTzKd7bYOZSFtfEPr.LgelRP3OPQ2xLPRlzExSfA HTTP/1.1" 302 209 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/ HTTP/1.1" 302 467 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /auth/realms/Testrealm/protocol/openid-connect/auth?response_type=code&scope=openid&client_id=testclient&state=R4eTEuD9KmDts12jodhM8EFl-q4&redirect_uri=http%3A%2F%2Fopenidc%2Fprotected%2Fredirect_uri&nonce=e_-XuNDJWG2zVzVwtbpgLFxD9yNANI-NZK27Okpm7fM HTTP/1.1" 302 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | [Wed Feb 07 06:16:59.691624 2024] [auth_openidc:error] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_restore_proto_state: no "mod_auth_openidc_state_R4eTEuD9KmDts12jodhM8EFl-q4" state cookie found openidc-1 | [Wed Feb 07 06:16:59.691702 2024] [auth_openidc:error] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_unsolicited_proto_state: could not parse JWT from state: invalid unsolicited response: [src/jose.c:809: oidc_jwt_parse]: cjose_jws_import failed: invalid argument [file: jws.c, function: cjose_jws_import, line: 787] openidc-1 | [Wed Feb 07 06:16:59.691708 2024] [auth_openidc:error] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_authorization_response_match_state: unable to restore state openidc-1 | [Wed Feb 07 06:16:59.691713 2024] [auth_openidc:warn] [pid 38:tid 140251536283392] [client 192.168.65.1:42785] oidc_handle_authorization_response: invalid authorization response state; a default SSO URL is set, sending the user there: http://openidc/protected/ openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/redirect_uri?state=R4eTEuD9KmDts12jodhM8EFl-q4&session_state=dbe5e137-2a28-4967-a65b-dadf75b962ad&code=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..q7urKj2-HnNPYO9Z68XTwA.rRKdELKBR4cknQKijw4m8kdJdVuwUl4OorvaLD5anTesKZoC79Az_5_XoUJGCZ2lp4hyTEcj7Zcr2J_pvaxcxty-vTO6a1NNXAn3_b2EtbnzqUH0E_pVMRafwp6tMiNg__PrmyJaZmVWVc4dFGnkVX-my78p5CxYpRWYYsjV-1NiiX-mhDBOVI0pmJKJq6gUMgxV_5UzUPF_rWcLm7i_F3oPwXG5K6oYvEYDrHA6oXhQp0FqoGnR4dXCA5OjEQTz.a2J88MadiR6aY_tCu2ehkw HTTP/1.1" 302 209 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/ HTTP/1.1" 302 467 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /auth/realms/Testrealm/protocol/openid-connect/auth?response_type=code&scope=openid&client_id=testclient&state=qEtgOQYDqrzKcpNJ18QYh3Bilag&redirect_uri=http%3A%2F%2Fopenidc%2Fprotected%2Fredirect_uri&nonce=B998lw5E3zFPHFtjebyF6JbmH0kKhgSUA7sc-kQY0bU HTTP/1.1" 302 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | 192.168.65.1 - - [07/Feb/2024:06:16:59 +0000] "GET /protected/redirect_uri?state=qEtgOQYDqrzKcpNJ18QYh3Bilag&session_state=dbe5e137-2a28-4967-a65b-dadf75b962ad&code=eyJhbGciOiJkaXIiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2In0..2LT010-nEOThEDi04aHqJg.NXZ6JEejx6l1zy9G1UYUZOzMpdFSCS72fBUAQ4HhtF0TeNVIG4rNvNt8O4rGTKpK0ZLpdXzIHH7n1krKxqcxX2TaX2m_SmrdzjK4AaySANNsdCvGAj5Y4lPNn_USwGFE3T4prJkTr-IbU_K07jgoSHdypvRaAUNnePbwfh_DAi_dQwX7mtkH8xwPqUHaqIMtU39iGslANwSbbYUObsOf0NAZhXYGEOMgEuqYHFDolIz-FmDUcXUk9b6gRyB9wYnV.Tvro1hakZ1rwTJ2__hhi8g HTTP/1.1" 302 209 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" openidc-1 | [Wed Feb 07 06:16:59.781493 2024] [auth_openidc:error] [pid 38:tid 140251511105280] [client 192.168.65.1:42785] oidc_restore_proto_state: no "mod_auth_openidc_state_qEtgOQYDqrzKcpNJ18QYh3Bilag" state